Scada Data Gateway Security Vulnerabilities and Issues — Scada Data Gateway CVE List

Lucene search

TrianglemicroworksScada Data Gateway

22 matches found

CVE•added 2020/04/15 7:15 p.m.•54 views

CVE-2020-10615

Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers cause a denial-of-service condition due to a lack of proper validation of the length of user-supplied data, prior to copying it to a fixed-length stack-based buffer. Authentication is...

7.5CVSS7.5AI score0.00766EPSS

CVE•added 2024/05/07 11:15 p.m.•51 views

CVE-2022-0369

Triangle MicroWorks SCADA Data Gateway Restore Workspace Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Triangle MicroWorks SCADA Data Gateway. Although authentication is required to exploit ...

7.2CVSS7.5AI score0.02007EPSS

CVE•added 2024/05/03 3:15 a.m.•51 views

CVE-2023-39465

Triangle MicroWorks SCADA Data Gateway Use of Hard-coded Cryptograhic Key Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Triangle MicroWorks SCADA Data Gateway. Authentication is not required to exploit...

7.5CVSS7.2AI score0.00079EPSS

CVE•added 2013/09/09 11:39 a.m.•50 views

CVE-2013-2793

Triangle MicroWorks SCADA Data Gateway 2.50.0309 through 3.00.0616, DNP3 .NET Protocol components 3.06.0.171 through 3.15.0.369, and DNP3 C libraries 3.06.0000 through 3.15.0000 allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet.

7.8CVSS6.8AI score0.00475EPSS

CVE•added 2024/05/03 3:15 a.m.•49 views

CVE-2023-39462

Triangle MicroWorks SCADA Data Gateway Workspace Unrestricted Upload Vulnerability. This vulnerability allows remote attackers to upload arbitrary files on affected installations of Triangle MicroWorks SCADA Data Gateway. Although authentication is required to exploit this vulnerability, the existi...

6.5CVSS6.8AI score0.00456EPSS

CVE•added 2024/05/03 3:15 a.m.•48 views

CVE-2023-39463

Triangle MicroWorks SCADA Data Gateway Trusted Certification Unrestricted Upload of File Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Triangle MicroWorks SCADA Data Gateway. Although authentication is required...

7.2CVSS7.5AI score0.00305EPSS

CVE•added 2014/05/30 11:55 p.m.•47 views

CVE-2014-2342

Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows remote attackers to cause a denial of service (excessive data processing) via a crafted DNP3 packet.

5CVSS6.7AI score0.00455EPSS

CVE•added 2024/05/03 3:15 a.m.•47 views

CVE-2023-39466

Triangle MicroWorks SCADA Data Gateway get_config Missing Authentication Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Triangle MicroWorks SCADA Data Gateway. Authentication is not required to exploit ...

5.3CVSS5AI score0.00083EPSS

CVE•added 2014/05/30 11:55 p.m.•46 views

CVE-2014-2343

Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows physically proximate attackers to cause a denial of service (excessive data processing) via a crafted DNP request over a serial line.

2.1CVSS6.5AI score0.00061EPSS

CVE•added 2020/04/15 7:15 p.m.•46 views

CVE-2020-10611

Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers to execute arbitrary code due to the lack of proper validation of user-supplied data, which can result in a type confusion condition. Authentication is not required to exploit this vu...

9.8CVSS9.7AI score0.09013EPSS

CVE•added 2013/09/09 11:39 a.m.•44 views

CVE-2013-2794

Triangle MicroWorks SCADA Data Gateway 2.50.0309 through 3.00.0616, DNP3 .NET Protocol components 3.06.0.171 through 3.15.0.369, and DNP3 C libraries 3.06.0000 through 3.15.0000 allow physically proximate attackers to cause a denial of service (infinite loop) via crafted input over a serial line.

4.9CVSS6.7AI score0.00053EPSS

CVE•added 2024/05/03 3:15 a.m.•43 views

CVE-2023-39458

Triangle MicroWorks SCADA Data Gateway Use of Hard-coded Credentials Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of Triangle MicroWorks SCADA Data Gateway. Authentication is not required to exploit this...

5.3CVSS5.4AI score0.00011EPSS

CVE•added 2024/05/03 3:15 a.m.•43 views

CVE-2023-39467

Triangle MicroWorks SCADA Data Gateway certificate Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Triangle MicroWorks SCADA Data Gateway. Authentication is not required to exploit this vulnerability. Th...

5.3CVSS4.9AI score0.00058EPSS

CVE•added 2024/05/03 3:15 a.m.•42 views

CVE-2023-39459

Triangle MicroWorks SCADA Data Gateway Directory Traversal Arbitrary File Creation Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected installations of Triangle MicroWorks SCADA Data Gateway. User interaction is required to exploit this vulnerability in t...

7.8CVSS7.4AI score0.00251EPSS

CVE•added 2024/05/03 3:15 a.m.•42 views

CVE-2023-39461

Triangle MicroWorks SCADA Data Gateway Event Log Improper Output Neutralization For Logs Arbitrary File Write Vulnerability. This vulnerability allows remote attackers to write arbitrary files on affected installations of Triangle MicroWorks SCADA Data Gateway. Although authentication is required t...

4.4CVSS5AI score0.00136EPSS

CVE•added 2024/05/03 3:15 a.m.•42 views

CVE-2023-39468

Triangle MicroWorks SCADA Data Gateway DbasSectorFileToExecuteOnReset Exposed Dangerous Function Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Triangle MicroWorks SCADA Data Gateway. Authentication is required ...

7.2CVSS7.5AI score0.0085EPSS

CVE•added 2024/05/03 3:15 a.m.•40 views

CVE-2023-39464

Triangle MicroWorks SCADA Data Gateway GTWWebMonitorService Unquoted Search Path Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute code on affected installations of Triangle MicroWorks SCADA Data Gateway. Although authentication is required to exploit this v...

7.2CVSS7.5AI score0.00141EPSS

CVE•added 2023/06/07 7:15 a.m.•39 views

CVE-2023-2186

On Triangle MicroWorks' SCADA Data Gateway version

9.8CVSS9.4AI score0.00231EPSS

CVE•added 2024/05/03 3:15 a.m.•39 views

CVE-2023-39457

Triangle MicroWorks SCADA Data Gateway Missing Authentication Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Triangle MicroWorks SCADA Data Gateway. Authentication is not required to exploit this vulnerability. The specific flaw exist...

9.8CVSS9.8AI score0.00232EPSS

CVE•added 2024/05/03 3:15 a.m.•39 views

CVE-2023-39460

Triangle MicroWorks SCADA Data Gateway Event Log Directory Traversal Arbitrary File Creation Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected installations of Triangle MicroWorks SCADA Data Gateway. Although authentication is required to exploit this v...

7.2CVSS7.1AI score0.00656EPSS

CVE•added 2020/04/15 7:15 p.m.•34 views

CVE-2020-10613

Triangle MicroWorks SCADA Data Gateway 3.02.0697 through 4.0.122, 2.41.0213 through 4.0.122 allows remote attackers to disclose sensitive information due to the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated structure. Authentication is not ...

7.5CVSS7.3AI score0.00697EPSS

CVE•added 2023/06/07 7:15 a.m.•34 views

CVE-2023-2187

On Triangle MicroWorks' SCADA Data Gateway version

5.3CVSS5.3AI score0.00101EPSS